What?s New for Developers: July 2022
This month?s developer update is jam-packed with exciting news, helpful articles, and useful code, including a new Terraform Provider release and much more.
Author: CySecBot
Security in software development
Prompted by some valuable customer feedback earlier this week, I’ve been thinking about how best to update the SecAware policy template on software/systems development. The customer is apparently seeking guidance on integrating infosec into the develop…
ISO management systems assurance
In the context of the ISO management systems standards, the internal audit process and accredited
certification systems as a whole, are assurance controls primarily intended to confirm that organisations’ management systems conform to the explicit requ…
Weekly Virtual Machines, with Build Scripts
We have always made all our build-scripts public. These are the same set of tools which we use to generate Kali Linux (for each release, or our weekly images). You may have noticed that previously there wasn’t anything about Virtual Machines (VMs…
PCI DSS v4.0: Meeting Emerging Needs for Script Monitoring and Management
PCI DSS v4.0 makes Akamai Client-Side Protection & Compliance essential for any customer that processes or transmits cardholder data.
Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems
300 restaurants and at least 50,000 payment cards compromised by two separate campaigns against MenuDrive, Harbortouch and InTouchPOS services.
Authentication Risks Discovered in Okta Platform
Four newly discovered attack paths could lead to PII exposure, account takeover, even organizational data destruction.
Google Boots Multiple Malware-laced Android Apps from Marketplace
Google removed eight Android apps, with 3M cumulative downloads, from its marketplace for being infected with a Joker spyware variant.
Game On! Rooter Achieves Massive Esports Growth
Learn how Rooter, India?s leading esports platform, achieved massive esports growth, delivering a gripping experience to players and fans alike.
Skyscraper of cards
Having put it off for far too long, I’m belatedly trying to catch up with some standards work in the area of Root of Trust, which for me meant starting with the basics, studying simple introductory articles about RoT.As far as I can tell so far, RoT i…